I'm not sure that I understand your question. Why would you need to port forward UDP 500? The ISAs should act as VPN endpoints for the site-to-site VPN. So you setup both ISAs, configure DDNS, and the configure a site-to-site IPSec VPN using the DDNS name in the opposing ISA as its remote peer. In theory that should work without requiring any additional port forwarding.
Sent from Cisco Technical Support iPhone App
Please rate all helpful posts and mark correct answers to assist others searching for solutions in the community.
Article ID:3091 Reboot and Factory Default Reset on ISA500 Series
Integrated Security Appliances Objective Reboot or restart of the
network device is made when certain changes in the settings need reboot
or if the device is frozen. The configuration setti...
Article ID:3403 WAN Quality of Service (QoS) Policy Profiles Settings on
ISA500 Series Integrated Security Appliances Objective Wide Area Network
(WAN) Quality of Service (QoS) policy profiles manage traffic through
classed-based profiles. These profiles ...
Article ID:2922 Cisco QuickVPN Installation Tips for Windows Operating
Systems For a video showing installation tips on Quick VPN, visit
http://youtu.be/hHu2z6A78N8 Objective Cisco QuickVPN is a free software
designed for remote access to a network. It is...